| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS07-022 | Vulnerability in Windows Kernel Could Allow Elevation of Privilege (931784) | Microsoft Windows | Critical | 11-04-2007 |
Technical Information
Brief overview of the risk:
A privilege elevation vulnerability exists in Windows Kernel because of incorrect permissions on a mapped memory segment. An attacker who successfully exploited this vulnerability could take complete control of an affected system.
Detailed Information on the risk:
MS07-022 patches a local privilege escalation vulnerability caused by the way the Windows Kernel maps memory. The attacker would need to upload a maliciously crafted binary and execute it on the victim machine to take complete control of the host.Further information on this exploit is available at : MS07-022
Affected Software
Microsoft Windows 2000 Service Pack 4Microsoft Windows XP Service Pack 2
Microsoft Windows Server 2003, Microsoft Windows Server 2003 Service Pack 1, and Microsoft 2003 Service Pack 2